From f23c20d82b3f495a08acbc902c102ba14df608fc Mon Sep 17 00:00:00 2001
From: Wanda <wd.gusdya@gmail.com>
Date: Wed, 11 Jun 2025 09:21:49 +0700
Subject: [PATCH] update

---
 build.gradle                                  |   5 +-
 cert/esbuat-djpbdomain.der                    | Bin 0 -> 1784 bytes
 .../gateway/span/config/JwtAuthFilter.java    |   2 +-
 .../span/controllers/AuthController.java      |   4 +-
 .../span/services/HttpClientService.java      |  74 ++++++++++--------
 src/main/resources/application.yaml           |  19 ++++-
 6 files changed, 61 insertions(+), 43 deletions(-)
 create mode 100644 cert/esbuat-djpbdomain.der

diff --git a/build.gradle b/build.gradle
index 9ce69f8..d5382aa 100644
--- a/build.gradle
+++ b/build.gradle
@@ -6,7 +6,7 @@ plugins {
 
 group = 'id.co.anaheim'
 //version = '0.0.5-SNAPSHOT'
-version = '0.0.6'
+version = '0.0.13-Prod'
 
 java {
 	toolchain {
@@ -29,7 +29,6 @@ ext {
 }
 
 dependencies {
-	implementation 'org.springframework.boot:spring-boot-starter-actuator'
 	implementation 'org.springframework.boot:spring-boot-starter-jdbc'
 	implementation 'org.springframework.boot:spring-boot-starter-security'
 	implementation 'org.springframework.boot:spring-boot-starter-web'
@@ -45,7 +44,7 @@ dependencies {
 	implementation 'io.azam.ulidj:ulidj:1.0.4'
 	implementation 'com.bucket4j:bucket4j-core:8.3.0'
 
-	implementation 'org.asynchttpclient:async-http-client:3.0.0'
+	implementation 'org.asynchttpclient:async-http-client:3.0.1'
 
 	compileOnly 'org.projectlombok:lombok'
 	runtimeOnly 'com.oracle.database.jdbc:ojdbc11'
diff --git a/cert/esbuat-djpbdomain.der b/cert/esbuat-djpbdomain.der
new file mode 100644
index 0000000000000000000000000000000000000000..69f9606839fee69d762318222605a2e0f950042f
GIT binary patch
literal 1784
zcmbVMcTf{~6yDuzmX;tIOaKEcO^u%6m(ZlBAiWHrp&X(}3=k=X7R-UjNRXfdGL9lD
zDg<(HAe`cP_OYE<u)x6~BE<&c>3E{jEFib5;8^~-xt-bBeQ&?t`(F9>0Xa4V<kW5@
z1%VMnM_n(m|Jmx>SA9E$DcT|Rj{zOin5XbkjM8D4PK7`iPYY;ZlwcHNAi)COOu!%w
zO$N;^RvhaZog&4(B_f^`;E`?$W8P=CXF}o{VFK>S$AkO?_;P^@F7R^U+t}iKzz4Xi
z3lA8v=zMEn&9em`uN8!8Lz;Xm8+#l36=3xj)ZT79CeS50)EIOhVZ1O!D#QcRQiW2U
zA(-_kC0*a>b<q-ObV{sHg8N3N2_<5ogr^T!A5)|0%;UzBfcWS%t~ik!8wKRB>6hig
zREQ#nr$K~Y6OqF()cA9Mqt7-OE5q2*uCv02x4Pg`*1Ilj8I!M!D_(F6>Kz+Oq8>dL
z^`iV*4%<KWvFUCvj=bD1vb>YiB?&t2*9$pqxr<7(uD5Z@)apz$7VSI|xm|ruQbvlK
zevNt5qn)RD<5f;$!M-MfxM2J9&qqrhjih0FSw<5>2|)&tV>#vdWBF~BqVcUeV|reH
z@QX4!l-aPcRFSGO$jO_nVsBX6V30GYwsKtm+CV^1y#9T(`^}>)$MqeXU$y!Fswl09
zNIrq}20j#S@z*?C<J_*bblVP9E`@n4IGJlZT2t}R^QMbu2fwe@t^{fqrk|zxsfAiM
zo4xH?lXTwKH{cXPfgxBWr_=*Er4ASqZ8S7P^#F5|t~7Vkg_x`N?d~<7<=7ph7@qs*
z77G}X0Bw|s>RvPF9He)g(64Fvv9ql&G{ie3T?UqrpQob>fvx<zQOIY=WU_C@BiH_B
zT#Ly7IBExMfE9*`vuT8W0SC;%)aPR`m8yoo%vo!t(j*5<OEOv%Ay5$^P_8I(ouzA_
z0BDovr@`<9ic%1&@>9MRD5<N-2o(798v?S+NW3wcy&Gf~0WYP8(oL~+GQKD!!Rl**
zDcygPy(ga#J)!wek|z~U2z~*NOPu>YlJ)<Ml$|$~E)1g^Ksqp=vH`5nn@lxPl$!Jv
z0a*4Kg(%#o3KEj7O8p9G`Cn_20vg#W2H9E!kpE8>rb)~Mh1=5+6hY;%gt+72wa|K~
zd3wl;+uY2<gL&b1W4ZgD8YGK->RHe0;MQ<i(@jTp2!adyn!AZ7N`X9qJ7NNj-s%mj
zJ<re1TQ#1kxFUI9bb>t_m|e6e9-h`xS^dj#1n18!>rfPxm8|nwpz_HdoAG>9tDf;8
z2wKzfz&+y0FapV-jbTPJ9{x0M16wH0j2M6OXWmL(rT?zdQxwa)+6CP7lass}A9=li
z2f<q`K3pZuu|Az^GzX(eN^j1rGXA00_+4gC-K&y8j|oQta%*PN<CaD2--n+Xgy|$S
z?0SZZDsG%CWV7B{ytk35w?k=Ae=ASqEGxLE<AU8uKGk%w)p?|Nv*P{fJig($kzHZn
zB(dH{Vh`Yk;B=@uBTUjAv(Q1{Aok}tWz@3k=5}6RXwRpPxE7tULhz88p$FFIMVKYK
zlxccwcxL_jL1g}K+|km%6jhSw1pV+Yw;Hj;iLC}h9wzhaCK`L}wYz#Gx(~Tm1MmRl
z)60(z?2Q+M+U_V(b8wnYKV<P>v=W>-w=W|#{D5&xq4uKMC7pxsnHL<hTZSIE&&@@#
zMS968I-H=ujJRb>7T?igbNa20=fg`w%_+Q1tJeB5x0v;w@uuOL6~Zuc=lkx<@e-)H
zTh(^2Nv>8<xU07!9XlF!BL45~O^g+_;{A1(mNyMtcBpNor9M&Lika>iXgE@B=-}_B
z$NMA8G?)rsVTy6e%YrfW{Fj`7n8V&jZn5_7cY+1s@#V5Tu(Gn1mNhaw`{r>3>8ohm
heZgmd*6dInyjL}U&_XfcHGmgxTBoC$HF%>)@-GkSef<Cc

literal 0
HcmV?d00001

diff --git a/src/main/java/id/co/anaheim/gateway/span/config/JwtAuthFilter.java b/src/main/java/id/co/anaheim/gateway/span/config/JwtAuthFilter.java
index a67fdb4..3a63290 100644
--- a/src/main/java/id/co/anaheim/gateway/span/config/JwtAuthFilter.java
+++ b/src/main/java/id/co/anaheim/gateway/span/config/JwtAuthFilter.java
@@ -50,7 +50,7 @@ public class JwtAuthFilter extends OncePerRequestFilter {
         } else {
             BasicResponse basicResponse = new BasicResponse();
             basicResponse.setFileName("");
-            basicResponse.setResultCode("403");
+            basicResponse.setResultCode("401");
             Gson gson = new Gson();
             if (authHeader != null && authHeader.startsWith("Bearer ")) {
                 String token = authHeader.substring(7);
diff --git a/src/main/java/id/co/anaheim/gateway/span/controllers/AuthController.java b/src/main/java/id/co/anaheim/gateway/span/controllers/AuthController.java
index 8d50f1a..bc248b1 100644
--- a/src/main/java/id/co/anaheim/gateway/span/controllers/AuthController.java
+++ b/src/main/java/id/co/anaheim/gateway/span/controllers/AuthController.java
@@ -32,7 +32,7 @@ public class AuthController {
 
         User user = repository.findByUsername(authDto.getUsername());
         if (user == null) {
-            response.setResultCode("403");
+            response.setResultCode("401");
             response.setResultStatus("Tidak Memiliki Otorisasi");
             description.setMessage("Username/Password tidak sesuai");
         } else {
@@ -48,7 +48,7 @@ public class AuthController {
                 SimpleDateFormat dateFormat = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss");
                 description.setTokenExpiration(dateFormat.format(jwtExpiration.getValue()));
             } else {
-                response.setResultCode("403");
+                response.setResultCode("401");
                 response.setResultStatus("Tidak Memiliki Otorisasi");
                 description.setMessage("Username/Password tidak sesuai");
             }
diff --git a/src/main/java/id/co/anaheim/gateway/span/services/HttpClientService.java b/src/main/java/id/co/anaheim/gateway/span/services/HttpClientService.java
index a0a52bc..4bb7e48 100644
--- a/src/main/java/id/co/anaheim/gateway/span/services/HttpClientService.java
+++ b/src/main/java/id/co/anaheim/gateway/span/services/HttpClientService.java
@@ -2,16 +2,17 @@ package id.co.anaheim.gateway.span.services;
 
 import id.co.anaheim.gateway.span.models.JwtUsername;
 import lombok.extern.slf4j.Slf4j;
-import org.asynchttpclient.AsyncHttpClient;
-import org.asynchttpclient.BoundRequestBuilder;
-import org.asynchttpclient.Response;
+import org.asynchttpclient.*;
 import org.springframework.http.HttpStatus;
 import org.springframework.web.servlet.function.ServerRequest;
 import org.springframework.web.servlet.function.ServerResponse;
 
+import java.io.IOException;
 import java.io.InputStream;
 import java.nio.charset.StandardCharsets;
+import java.time.Duration;
 import java.util.List;
+import java.util.concurrent.ExecutionException;
 import java.util.concurrent.Future;
 
 import static org.asynchttpclient.Dsl.asyncHttpClient;
@@ -20,12 +21,10 @@ import static org.asynchttpclient.Dsl.asyncHttpClient;
 public class HttpClientService {
     private final String targetUrl;
 
-    private final AsyncHttpClient asyncHttpClient;
     private final JwtService jwtService;
 
     public HttpClientService(String targetUrl, JwtService jwtService) {
         this.targetUrl = targetUrl;
-        this.asyncHttpClient = asyncHttpClient();
         this.jwtService = jwtService;
     }
 
@@ -40,38 +39,47 @@ public class HttpClientService {
             log.info("request body {}", body);
             log.info("request headers {}", request.headers());
             log.info("request params {}", request.params());
-            BoundRequestBuilder boundRequestBuilder = asyncHttpClient
-                    .prepare(request.method().toString(), url)
-                    .setBody(body)
-                    .addHeader("Content-Type", request.headers().header("Content-Type"));
-            if (!request.headers().header("token").isEmpty()) {
-                List<String> token = request.headers().header("token");
-                boundRequestBuilder.addHeader("token", token);
-            }
-            if (!request.headers().header("Authorization").isEmpty()) {
-                String authorizationHeader = request.headers().header("Authorization").get(0);
-                String token = authorizationHeader.substring(7);
-                JwtUsername username = jwtService.extractUsername(token);
-                if (username.isValid() && !username.getValue().equals("admin")) {
-                    String staticToken = jwtService.extractStaticToken(token);
-                    if (staticToken != null) {
-                        boundRequestBuilder.addHeader("token", staticToken);
-                    }
+            try (AsyncHttpClient asyncHttpClient = asyncHttpClient()) {
+                BoundRequestBuilder boundRequestBuilder = asyncHttpClient
+                        .prepare(request.method().toString(), url)
+                        //.setReadTimeout(Duration.ofMinutes(120))
+                        //.setRequestTimeout(Duration.ofMinutes(120))
+                        .setReadTimeout(Duration.ofMinutes(15))
+                        .setRequestTimeout(Duration.ofMinutes(15))
+                        .setBody(body)
+                        .addHeader("Content-Type", request.headers().header("Content-Type"));
+                if (!request.headers().header("token").isEmpty()) {
+                    List<String> token = request.headers().header("token");
+                    boundRequestBuilder.addHeader("token", token);
                 }
+                if (!request.headers().header("Authorization").isEmpty()) {
+                    String authorizationHeader = request.headers().header("Authorization").get(0);
+                    String token = authorizationHeader.substring(7);
+                    JwtUsername username = jwtService.extractUsername(token);
+                    if (username.isValid() && !username.getValue().equals("admin")) {
+                        String staticToken = jwtService.extractStaticToken(token);
+                        if (staticToken != null) {
+                            boundRequestBuilder.addHeader("token", staticToken);
+                        }
+                    }
 
+                }
+                Future<Response> whenResponse = boundRequestBuilder
+                        .execute();
+                log.info("request {} {}", request.method(), url);
+                log.info("request headers {}", request.headers());
+
+                Response response = whenResponse.get();
+                log.info("Response {}", response);
+                log.info("Response Body {}", response.getResponseBody());
+                log.info("Response Content Type {} ", response.getContentType());
+                return ServerResponse.status(response.getStatusCode())
+                        .header("Content-Type", response.getContentType())
+                        .body(response.getResponseBody());
+            } catch (IOException | ExecutionException | InterruptedException e) {
+                log.error("Http error", e);
             }
-            Future<Response> whenResponse = boundRequestBuilder
-                    .execute();
-            log.info("request {} {}", request.method(), url);
-            log.info("request headers {}", request.headers());
 
-            Response response = whenResponse.get();
-            log.info("Response {}", response);
-            log.info("Response Body {}", response.getResponseBody());
-            log.info("Response Content Type {} ", response.getContentType());
-            return ServerResponse.status(response.getStatusCode())
-                    .header("Content-Type", response.getContentType())
-                    .body(response.getResponseBody());
         } catch (Exception e) {
             log.error("handleException - failed to run request again {}", url, e);
         }
diff --git a/src/main/resources/application.yaml b/src/main/resources/application.yaml
index ca6c4a9..c063614 100644
--- a/src/main/resources/application.yaml
+++ b/src/main/resources/application.yaml
@@ -1,15 +1,24 @@
 server:
   port: 8888 #prod
   #port: 8778 #dev
+  tomcat:
+    max-swallow-size: 8192MB
+    max-http-form-post-size: 8192MB
 
 spring:
   datasource:
-    url: jdbc:oracle:thin:@//10.216.100.100:1521/pdbsoadev
+    #url: jdbc:oracle:thin:@//10.216.100.100:1521/pdbsoauat
+    #url: jdbc:oracle:thin:@//10.216.100.100:1521/pdbsoadev
+    #url: jdbc:oracle:thin:@//soadb:1521/pdbsoauat
+    url: jdbc:oracle:thin:@//dbmsoascan.kemenkeu.go.id:1521/pdbsoaprod.kemenkeu.go.id
     #url: jdbc:oracle:thin:@localhost:1521:oracle
-    username: gateway
+    username: master_user
     #username: gateway
-    password: welcome1
+    #username: gateway
+    password: m4sterPassw0rd1
     #password: gateway
+    hikari:
+      schema: gateway
   cloud:
     gateway:
       mvc:
@@ -26,7 +35,9 @@ spring:
 app:
   gateway:
     remote-servers:
-      span: http://10.216.99.101:8002
+      #span: https://esbuat-djpb.kemenkeu.go.id
+      span: https://esb-djpb.kemenkeu.go.id
+      #span: http://10.216.99.101:8002
       #span: https://672fbf9066e42ceaf15e9a9b.mockapi.io
       users: http://localhost:8989
       #users: http://localhost:8779